OnePlus has stated that credit card data belonging to up to 40,000 clients were affected by the security breach that caused the organization shut down the online payment system earlier last week. The announcement came after a week in which hundreds of clients reported fraud on their accounts while they were purchasing OnePlus products.
According to the company:
Hi all, We are deeply sorry to announce that we have indeed been attacked, and up to 40k users at oneplus.net may be affected by the incident. We have sent out an email to all possibly affected users.
It’s not yet obvious if the hack was done from outside, or if someone had physical access to the server to place the malicious script.
“We recommend that you check your card statements and report any charges you don’t recognize to your bank. They will help you initiate a chargeback and prevent any financial loss.”